• Search BSI
  • Verify a Certificate
BSI Homepage
Contact Us
Search Icon
Back to menu Choose a country/region

No countries/regions found

Suggested region and language based on your location

    Your current region and language

    Submit

    ISO/IEC 27002:2022 Information Security Controls Implementation Training Course

    ISO/IEC 27002:2022 Information Security Controls Implementation Training Course

    Duration 2 days
    Available to book: Public classroom HK$7270 Contact us to book

    With the growing number of internal and external information security threats, organizations are increasingly recognizing the importance of implementing best practice controls to safeguard their information assets. By implementing and maintaining suitable controls, organizations become less susceptible to information security breaches and the financial and reputational damage they cause.

    ISO/IEC 27002 provides guidelines to help organizations select, implement and manage information security controls, taking into account their risk environment. It contains 4 security control clauses, which cover 93 controls. These controls are intended to be applicable to all organizations and represent a minimum ‘starting point’, i.e. additional controls and guidelines can be added as required. The standard supports the concepts and framework specified in ISO/IEC 27001.

    This course aims to provide clear and practical guidance on implementing the controls from ISO/IEC 27001 and other relevant management practice guidance.

     

    • This course will help you:

      • Apply the best practice controls contained in ISO/IEC 27002
      • Identify the key benefits of using ISO/IEC 27002 to protect information assets, as part of an effective ISMS or as a standalone activity
      • Explain the rationale behind the processes and usages associated with the controls
      • Recognize how implementing these commonly accepted controls will help reduce levels of risk within your organization
      • Implement the controls more effectively through clear and practical guidance

      This course will help organizations identify appropriate controls to be implemented in different situations, along with the benefits and potential pitfalls of doing so.

    • Anyone who wants to learn:

      • To identify and understand commonly accepted information security controls
      • How risks can be reduced to an acceptable level using controls
      • How to determine which controls are the most appropriate to implement
      • Practical implementation of ISO/IEC 27002 controls
      • The benefits and pitfalls associated with the use of different controls

       

      The course is applicable to representatives from any size or type of organization who is, or will be, involved in planning, implementing, maintaining, supervising or assessing information security, as part of an ISO/IEC 27001 ISMS or a standalone system. 

      Prerequisites

      We recommend that you have a basic understanding of information security principles and terminology.

      We also recommend that you have an understanding of the information risks faced by their organization. 

      A basic understanding of ISO/IEC 27001:2013, information technology and information risk management may be an advantage. 

      Some delegates on this course will have already attended our Information Security Management System (ISMS) Requirements of ISO 27001:2013, or Information Security Management System (ISMS) Implementing ISO/IEC 27001:2013 course.  

       

      • Detailed course notes
      • On completion, you'll be awarded an internationally recognized BSI Training Academy certificate
    Contact Us

    Let's shape your organization's future together

    Reach out and see how we can help guide you on your path to sustainable operational success.

    Get in touch
    Get in touch